User Tag List

Results 1 to 3 of 3

Thread: Ten Million+ Infections Strong, Conficker Worm Prepares for April 1 Update

  1. #1
    Noblesse Oblige
    • CvP's Gadgets
      • Motherboard:
      • ASUS P8Z77 V Delux
      • CPU:
      • Intel Core i7 3770K @3.9GHz
      • RAM:
      • GSkill TridentX 2x8GB DDR3 @2400MHz
      • Hard Drive:
      • Crucial M4 256GB SSD; WD Caviar Black 2TB; Hitachi 250GB; Samsung S3 1.5TB; Hitachi 2TB
      • Graphics Card:
      • EVGA 980Ti 6GB
      • Display:
      • Samsung 17"+22"+22"
      • Sound Card:
      • Realtek HD Audio <internal>
      • Speakers/HPs:
      • Creative Inspire 5:1
      • Keyboard:
      • Razer BlackWidow Ultimate
      • Mouse:
      • G7
      • Power Supply:
      • Seasonic X 850W 80Plus Gold
      • Optical Drive:
      • External DVD-RW
      • USB Devices:
      • Logitech Carl Zeiss Tessar HD 1080p Webcam
      • UPS:
      • Mercury 1500VA with Large Lead-Acid Battery
      • Operating System:
      • Genuine Windows 10 Pro
      • Comment:
      • Everything packed in a NZXT Phantom 820
      • ISP:
      • Link3/Amber IT
      • Download Speed:
      • 10000
      • Upload Speed:
      • 10000
    CvP's Avatar
    Join Date
    Feb 2008
    Location
    Dhaka, Bangladesh
    Posts
    9,019

    Arrow Ten Million+ Infections Strong, Conficker Worm Prepares for April 1 Update

    The worm that won't go away will get an upgrade on April 1

    The Conficker worm has been wreaking havoc on internet users ever since it climbed out of its slimy hole in the internet's dark nether-regions back in 2008. Now the worm is about to get even more dangerous when it receives its latest refresh in a series of periodic updates on April 1. Security officials are bracing for the impact that the upgrade might have.

    Either diabolical or brilliant, it's the Conficker worm's unique design that allowed it infect over 8 million business computers last year and scores of other individual users. The worm, like many viruses, is regularly evolving thanks to periodic downloads. However, the techniques it uses to do so are rather unique -- it cleverly creates thousands of false domains daily to throw off investigators. On the update day, it selects 500 correct domains out of the 50,000 candidates to download malware and updates from.

    Pierre-Marc Bureau, a researcher at Eset says that this has helped the virus evolve from an initial novice-seeming threat targeting a flaw in Windows services into a large scale menace. States Mr. Bureau, "From a high-level perspective, the 'A' variant gave the impression [of being] a 'test run'. It had code that probably was not meant to be spread globally. For example, it was checking for the presence of an Ukrainian keyboard or Ukrainian IP before infecting a system."

    The first run also contained a false lead -- it tried to download and execute a file called loadav.exe. This led security research to believe it was just one of a pack of malware programs trying to peddle fake antivirus software. It turned out to be a red herring -- the file was never uploaded and the next generation did away with the feature.

    In the second version, the worm continued to spread through Windows Services on unpatched machines. However, the update also granted it the power to spread over network shares by trying to log in autonomously into network machines with weak passwords. It also gained the ability to load itself onto USB sticks connected to infected machines, gaining another means of transmission. The scanning speed for machines to infect was greatly optimized -- in short the worm had become a real big problem.

    Finally, the worm got its third update, becoming the Downadup virus as it’s now known. The latest version added peer-to-peer communication between infected systems. It also added new domain-generation algorithms to help it disguise where it was receiving its updates from.

    At this point the worm is already a full scale threat, and there's no telling what might happen with the next update. Describes Mr. Bureau, "During the last week, 3.88 percent of our users have been attacked by Conficker, either because they accessed an infected device or by a network attack. The percentage is very high and shows that a high number of computers are presently infected and that the worm is still spreading."

    Estimates of the number infected machines vary greatly, but most experts agree that over 10 million computers, largely in the business sector were compromised last year. The number is large enough that Microsoft, which already has offered a bounty for the worm's writers, and AOL are teaming up to trying to weed out the domains it uses. However, they face an uphill battle due to the vast number of domains the worm generates. And law enforcement and security experts are no closer to having any clue what individual or individuals are writing the Conficker code.

    Meanwhile the Conficker continues to spread and get smarter. Its actions leave little doubt in the security community -- it's creating an army of infected machines, one that could do serious damage if unleashed.

    Adriel Desautels, CTO of Netragard states, "I don't think that the threat comes from the worm itself, it comes from the people that are in control of the mass of Conficker-infected systems. Those people have an immensely powerful weapon at their disposal, and that weapon threatens all of us."

    April 1 will see the attacks taken to the next level -- and it’s anyone's guess what capabilities it might gain.




    Ever evolving, the Conficker worm has gained the ability to download updates and malware from a select handful of randomly generated domains, the ability to spread over networks by hacking weak passwords, peer to peer communications between infected computers and transmission via USB. After 10 million+ infections, the worm will be updated again April 1. (Source: Cool Circuit)
    The abuse of greatness is when it disjoins remorse from power.
    Please do not PM me for support. You will NOT get a reply. Post in the relevant forum section.

  2. #2
    Member
    • Flame's Gadgets
      • Motherboard:
      • MSI 880GMA-E35
      • CPU:
      • AMD Phenom II X6 1090T @ 3.2Ghz
      • RAM:
      • 2x4GB Transcend DDR3 1333MHz
      • Hard Drive:
      • 2TB Hitachi 7200RPM
      • Graphics Card:
      • XFX AMD HD6850 1GB
      • Display:
      • LG Flatron W1953T 18.5"
      • Sound Card:
      • Realtek HD Audio
      • Speakers/HPs:
      • Creative | A4Tech
      • Keyboard:
      • Genius KB 101
      • Mouse:
      • Genius X Scroll
      • Controller:
      • Genius Maxfire
      • Power Supply:
      • Tt TR2 500W
      • Optical Drive:
      • ASUS DVD-RW
      • USB Devices:
      • ADATA 320GB External HDD
      • UPS:
      • Prolink somethingsomething
      • Operating System:
      • Windows 7 Ultimate (64-bit)
      • Benchmark Scores:
      • 5.9 | 7.7 (without HDD)
      • Comment:
      • BEST! :D
      • ISP:
      • Spark
      • Download Speed:
      • 45
      • Upload Speed:
      • 35
    Flame's Avatar
    Join Date
    Aug 2008
    Posts
    1,457

    Default Re: Ten Million+ Infections Strong, Conficker Worm Prepares for April 1 Update

    LoL..
    I got this some months ago... had to reformat my entire HDD...



  3. #3
    Member
    • avas911's Gadgets
      • Motherboard:
      • Gigabyte GA-EG41MF-US2H
      • CPU:
      • Intel Pentium Dual Core E6500 2.9 GHz 2MB L2 1066MHz FSB
      • RAM:
      • 2x2GB 800 MHz Apecer at 5-5-5-15
      • Hard Drive:
      • OCZ Vertex 3 120GB Sata III & Samsung 103SJ 1 TB F3
      • Graphics Card:
      • Sapphire ATI RADEON HD6850 1GB GDDR5
      • Display:
      • Philips 107S7 17" at [email protected]
      • Sound Card:
      • Built In Realtek ALC883
      • Speakers/HPs:
      • Creative SBS A200 / Cosonic Generic / Logitech Ultimate Ears 200vi/SoundMAGIC E10M IEM
      • Keyboard:
      • A4Tech
      • Mouse:
      • A4Tech X7 XL-747H 3600 DPI
      • Controller:
      • None
      • Power Supply:
      • Delta GPS-500AB A 500W
      • Optical Drive:
      • Asus 16x IDE DVD R
      • USB Devices:
      • Transcend 500 8GB & Corsair Survivor USB 3.0 16GB & Samsung Class 10 16GB mSDHC
      • UPS:
      • Rahimafrooz 600VA Premium
      • Operating System:
      • Win7 Ultimate 64Bit
      • Comment:
      • Slow in gaming
      • ISP:
      • Link3 512
      • Download Speed:
      • 70
      • Upload Speed:
      • 70
    avas911's Avatar
    Join Date
    Nov 2008
    Location
    Mohammadpur
    Posts
    4,251

    Default Re: Ten Million+ Infections Strong, Conficker Worm Prepares for April 1 Update

    Well i have been infected with it twice already. There is a patch and you can use windows defender to remove it.

Similar Threads

  1. Fallout 3 ships 4.7 million in first week
    By CHR.Overload in forum RPG
    Replies: 24
    Last Post: January 7th, 2010, 16:04
  2. releasing : @ April 2009
    By s.a_rocky in forum Upcoming PC Titles
    Replies: 8
    Last Post: April 5th, 2009, 10:48
  3. Replies: 5
    Last Post: March 13th, 2009, 16:33
  4. Te.Vy®ush vs HUMAN(LAN) - 3rd April 2008
    By xk::v (G®immjaw) in forum Counter Strike
    Replies: 18
    Last Post: April 28th, 2008, 20:02
  5. Replies: 1
    Last Post: March 25th, 2008, 09:17

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  
Page generated in 0.17481 seconds with 14 queries.